Skip to content
/ filebeat-exim4 Public

Module for Filebeat which ingests Exim 4 logs into Elasticsearch

License

MIT license
2 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lbausch/filebeat-exim4

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
.github/workflows
.github/workflows
 
 
module/exim4
module/exim4
 
 
modules.d
modules.d
 
 
tests
tests
 
 
.editorconfig
.editorconfig
 
 
.gitattributes
.gitattributes
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Tests

filebeat-exim4

Fully tested Filebeat module to ingest Exim 4 logs

Installation

  • Copy module/exim4 to /usr/share/filebeat/module/
  • Copy modules.d/exim4.yml.disabled to /etc/filebeat/modules.d/exim4.yml

Configuration

All configuration is done in /etc/filebeat/modules.d/exim4.yml.

By default both main and reject logs are ingested. This behaviour can be changed by setting the corresponding enabled flag to true or false respectively:

- module: exim4
  main:
    enabled: true

  reject:
    enabled: false

The module expects the main log in /var/log/exim/main.log and the reject log in /var/log/exim/reject.log. It's possible to use custom paths for the logs by specifying var.paths:

- module: exim4
  main:
    enabled: true

    var.paths:
      - /var/log/exim_mainlog

  reject:
    enabled: true

    var.paths:
      - /var/log/exim_rejectlog

Further Reading

About

Module for Filebeat which ingests Exim 4 logs into Elasticsearch

Topics

elasticsearch filebeat elk beats exim elastic exim4

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases 2

v0.2.0 Latest
Jun 3, 2024
+ 1 release

Packages

No packages published

Languages